Tag: federal government

Some US federal agencies and those who collaborate with them must support an automated, secure, and scalable multi-account cloud environment that meets Federal Risk and Authorization Management Program (FedRAMP) and Cybersecurity Maturity Model Certification (CMMC) standards. To support these needs, AWS customers and partners can deploy the Landing Zone Accelerator (LZA) on AWS. Recently, AWS worked with Coalfire, a FedRAMP-approved third-party assessment organization (3PAO) and AWS Partner, to assess and verify the LZA solution.

As more federal public sector organizations move toward cloud computing, many are looking for ways to make sure that they’re using the cloud effectively and efficiently. One way to do this is to establish a cloud center of excellence (CCoE). Learn how to build an effective CCoE to help streamline cloud adoption, security and innovation needs, reduce costs, and more.

A new IDC whitepaper explores how, with cloud, US federal agencies can achieve meaningful digital innovation while addressing their mission needs. As more agencies migrate applications and workloads to the cloud, including their most sensitive and heavily regulated data, a key consideration is meeting federal compliance and security mandates.

Transportation agencies are increasing their focus on cybersecurity prevention due to persistent threats. Learn how transportation agencies can use AWS to support four cybersecurity best practices and position their organizations against cyber threats.

Improving the customer experience (CX) has emerged as an imperative for government agencies. In this blog post, learn an architecture pattern that public institutions can use to improve CX while building and deploying secure, resilient, and performant web applications that support sudden surges in demand for public services. This architecture pattern addresses the need of an example use case in which an agency must request information from thousands to millions of civilians, who may access a single-page application at similar times, and then sends email notifications to each civilian to confirm their activity.

AWS announced the launch of the Cloud Audit Academy (CAA) for Federal and DoD Workloads (FDW) in AWS. This is a two-day accelerated training course to educate customers on how to leverage AWS services to assist with US Federal and Department of Defense (DoD) security and compliance requirements. This training course also qualifies for 12 hours of continuing professional education (CPE). Register at no cost today.

Moving sensitive US government data to the cloud requires the meticulous application of a proven migration methodology, skilled resources, a robust solution, and a mature logistics model. A US government agency elected to move its Security and Information Event Management (SIEM) system from a virtualized, on-premise environment to the AWS Cloud. AWS Partner Booz Allen performed the migration and used the AWS Migration Acceleration Program (MAP) and AWS Snow Family of devices as mechanisms to help the customer save time, reduce costs, and increase their agility to develop new features for their constituents.

The recent Federal Bureau of Investigation (FBI) Criminal Justice Information Services (CJIS) Security Policy update contains important cloud computing language that aligns with the AWS approach to building CJIS compliant solutions. Learn more about the CJIS Security Policy changes and how AWS supports these new policies.

Virtually all federal, state, and local government agencies are subject to various data retention and records management policies, regulations, and laws. AWS Wickr provides federal agencies with an innovative solution that can help them build public trust by protecting sensitive communications, while supporting the capture and management of records.  

The US Office of Management and Budget published M-21-31, a memorandum for federal government agencies to define event logging requirements related to cybersecurity incidents. These guidelines aim to support the detection, investigation, and remediation of cyber incidents on federal information systems. The memorandum defines various event logging (EL) tiers and the log data that must be captured for various log categories. Learn the services from AWS that have been called out explicitly in the memorandum for logging and retention requirements at the EL1 level, and the resources you can use to set up these services to capture the required log data.